CVE-2017-14089
CVE-2017-14089
An Unauthorized Memory Corruption vulnerability in Trend Micro OfficeScan 11.0 and XG may allow remote unauthenticated users who can access the OfficeScan server to target cgiShowClientAdm.exe and cause memory corruption issues.
Produtos afetados
Trend Micro · Trend Micro OfficeScanPoCs públicas encontradas — 3
cve_referencepacketstormsecurity.com/files/144464/TrendMicro-OfficeScan-11.0-XG-12.0-Memory-Corruption.htmlnão verificadocve_referencewww.exploit-db.com/exploits/42920/não verificadoexploitdbwww.exploit-db.com/exploits/42920não verificado⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://hyp3rlinx.altervista.org/advisories/CVE-2017-14089-TRENDMICRO-OFFICESCAN-XG-PRE-AUTH-REMOTE-MEMORY-CORRUPTION.txthttp://packetstormsecurity.com/files/144464/TrendMicro-OfficeScan-11.0-XG-12.0-Memory-Corruption.htmlhttp://seclists.org/fulldisclosure/2017/Sep/91https://success.trendmicro.com/solution/1118372https://www.exploit-db.com/exploits/42920/http://www.securityfocus.com/archive/1/541271/100/0/threadedhttp://www.securityfocus.com/bid/101076http://www.securitytracker.com/id/1039500